2FA Auth - Two Factor Authentication

Generate

Copy code

Remaining {{ currentRemaining }} seconds

Save to registry

Show QR

Scan QR

Clear

Period (seconds):

Digits:

Algorithm:

Tip: after changing any parameter, click "Generate" again to refresh the current code.

Quick URL usage

You can pass the TOTP secret via URL parameter so you don't need to type it:

{{ currentUrl }}?code=YOUR_SECRET_KEY Copy

Replace YOUR_SECRET_KEY with your actual Base32 secret.

2FA Registry

Store up to 1000 TOTP entries. All codes below update live and can be displayed or imported via QR codes. You can also export encrypted backups.

{{ accounts.length }} / {{ maxAccounts }} entries

Export All

Export Encrypted

Select Items

Export Selected ({{ selectedAccounts.length }})

Export Selected Encrypted

Select All

Deselect All

Cancel

Import JSON

Import Encrypted

Set registry PIN

Unlock registry

The registry is locked. Click �Unlock registry� above to view your 2FA entries on this device.

No entries match your search.

No 2FA entries saved yet. Fill the form above and click "Save to registry" to add your first entry.

About 2FA.my

2FA.my is a free, browser-based TOTP (Time-based One-Time Password) generator and registry. It is designed to help developers, security-conscious users and teams generate and test two-factor authentication (2FA) codes compatible with popular authenticator apps such as Google Authenticator, Microsoft Authenticator and many others.

Unlike traditional apps, 2FA.my runs entirely in your browser. Your TOTP secrets are processed locally and are not sent to any external server from this page. You can store up to 1000 2FA entries in your browser using local storage, and export/import them via JSON or encrypted backups when you need to move to another device.

FAQ

What is a TOTP 2FA code?

TOTP (Time-based One-Time Password) is a one-time code generated from a shared secret and the current time. It is commonly used to implement 2FA (two-factor authentication) on websites, VPNs, email accounts and many other services. Most services default to 6 digits and a 30-second period.

Can I scan QR codes from my phone or desktop?

Yes. 2FA.my includes a built-in QR code scanner. You can use your mobile camera (if your browser grants camera access) or upload an image file containing a QR code. The scanner reads otpauth://totp/... URIs and automatically fills in the secret and other parameters.

Where are my 2FA secrets stored?

All secrets are stored locally in your browser's local storage under the current device and browser profile. They are not transmitted to any external server from this page. If you clear your browser data or change devices, you should first export your registry as JSON or an encrypted backup to avoid losing your entries.

Is 2FA.my an official product of any provider?

No. 2FA.my is an independent tool and is not affiliated with Google, Microsoft, or any other authentication provider. It is simply compatible with the TOTP standard that many providers use.

Terms of Use

By using 2FA.my, you agree that you are solely responsible for how you use this tool and how you manage your TOTP secrets. 2FA.my is provided "as is", without any guarantees or warranties, express or implied. We do not accept liability for any loss of access, data or funds arising from the use or misuse of this site.

Do not use 2FA.my on publicly shared or untrusted devices if you are working with sensitive production accounts.
Always keep backup recovery codes or alternative login methods for services that you protect with 2FA.
It is your responsibility to export and securely back up your registry if needed.

Privacy Policy

2FA.my is designed with privacy in mind. The site does not require registration and does not store your TOTP secrets on our servers. All TOTP configuration data (secrets, labels and settings) is stored only in your browser's local storage.

We recommend accessing 2FA.my only over HTTPS and keeping your browser and operating system up to date. If you choose to share exports of your registry with other devices, you must handle those files securely and protect them as you would protect passwords.

Contact Us

If you have questions, suggestions or have found a security-related issue, you can contact us by email at [email protected]. Please avoid including any actual TOTP secrets in your email messages.

We are continuously improving 2FA.my to make it easier to test and manage two-factor authentication for your projects and accounts.

Scan this QR code with your 2FA app (Google Authenticator, Microsoft Authenticator, etc.).

Download as PNG

Hold steady with good lighting
Keep QR code within frame
Avoid glare and reflections
Try different distances

Waiting for camera...

On mobile devices, allow camera access when prompted. The scanner will automatically stop when a QR code is successfully read.

Selected image preview and result will appear here.

Set a 4�10 digit PIN to hide your registry from casual viewing on this device. Enter a new 4�10 digit PIN. Enter your PIN to unlock the registry.

Set a password to encrypt your registry. Keep this password safe; without it, the backup cannot be restored.

Enter the password used when the encrypted backup was created.